1 to 25 of 29 Incident Response Jobs in Leeds

Cyber Response Services Senior Analyst – KPMG Curve Base Location: Leeds based (Hybrid – 3 days per week in office) Experienced professional (kpmgcareers.co.uk) As a result of the work that we do, we require applicants to hold or be capable of obtaining UK National Security Vetting, the requirements for which could … is what matters most. What will you be doing? Help manage and co-ordinate cyber security incidents for our clients, working closely with the incident management lead within the team. Digital forensics of relevant incident data (disk, volatile memory, network packets, log files). Maintaining a current view … and being able to advise clients on the threat landscape and attacks which may be relevant to them. Develop KPMG’s in house cyber-response tools Help assess client incident response capability maturity. Help stand-up or improve clients’ own incident response capabilities. Help with More ❯

Cyber Response Services Senior Analyst – KPMG Curve Base Location: Leeds based (Hybrid – 3 days per week in office) As a result of the work that we do, we require applicants to hold or be capable of obtaining UK National Security Vetting, the requirements for which could include but not … is what matters most. What will you be doing? Help manage and co-ordinate cyber security incidents for our clients, working closely with the incident management lead within the team. Digital forensics of relevant incident data (disk, volatile memory, network packets, log files). Maintaining a current view … and being able to advise clients on the threat landscape and attacks which may be relevant to them. Develop KPMG’s in house cyber-response tools Help assess client incident response capability maturity. Help stand-up or improve clients’ own incident response capabilities. Help with More ❯

to make a real impact by ensuring the integrity and resilience of the company’s IT environment against evolving cyber threats. Key Responsibilities: Support incident management and security response efforts, providing expertise to address and resolve security incidents quickly and effectively. Perform regular security checks, including daily, weekly … Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk identification, and mitigation. Knowledge of security auditing and security incident response processes. Experience with event and log analysis to monitor and assess security risks. Solid understanding of Disaster Recovery (DR) and Business Continuity … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

Up to £60,000 A global leader in defence and security solutions is seeking a Senior SOC Analyst to take charge of security operations, incident management, and threat detection strategies. This is an excellent opportunity for an experienced SOC analyst to step into a leadership role and help protect … national security interests. Key Responsibilities: Lead and mentor a team of SOC analysts in a high-security environment. Oversee real-time security monitoring and incident response activities. Investigate, triage, and manage security incidents using SIEM, EDR, and NDR tools. Coordinate threat intelligence integration to enhance detection capabilities. Develop … and refine SOC processes to improve efficiency and resilience. Requirements: 5+ years in Security Operations, with hands-on experience in incident response and threat analysis. Strong understanding of network security, TCP/IP protocols, and intrusion detection. Proficiency in Python and scripting for automation and security tooling. Experience More ❯

Up to £60,000 A global leader in defence and security solutions is seeking a Senior SOC Analyst to take charge of security operations, incident management, and threat detection strategies. This is an excellent opportunity for an experienced SOC analyst to step into a leadership role and help protect … national security interests. Key Responsibilities: Lead and mentor a team of SOC analysts in a high-security environment. Oversee real-time security monitoring and incident response activities. Investigate, triage, and manage security incidents using SIEM, EDR, and NDR tools. Coordinate threat intelligence integration to enhance detection capabilities. Develop … and refine SOC processes to improve efficiency and resilience. Requirements: 5+ years in Security Operations, with hands-on experience in incident response and threat analysis. Strong understanding of network security, TCP/IP protocols, and intrusion detection. Proficiency in Python and scripting for automation and security tooling. Experience More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

and ensure smooth feature rollouts with minimal downtime. Define and manage monitoring, logging, and telemetry using tools like AWS Cloudwatch, Prometheus, and Datadog. Lead incident response and production troubleshooting with a proactive and preventative mindset. Drive automation initiatives with tools like GitlabCI, Terraform/OpenTofu, Ansible, and scripting … IAM). Experience with Kubernetes and Argo CD in production settings. Deep knowledge of application security protocols and infrastructure-level security practices. Real-time incident response skills. Proficient in infrastructure as code, monitoring, and automation. Excellent communication, collaboration, and problem-solving skills. Relevant certifications in AWS would be More ❯

robust risk management framework, proactively identifying, assessing, and mitigating cybersecurity risks in alignment with business goals. Define standards for operational security including vulnerability management, incident detection and response, threat intelligence, and third-party/vendor security management. Act as the key internal and external security spokesperson, confidently communicating … track record of building and embedding security awareness and risk management frameworks across business and technical teams. Strong operational experience, including establishing and managing incident response, vulnerability management, and security monitoring programs. Ability to communicate complex security topics clearly to non-technical stakeholders, influencing executives, customers, and teams. More ❯

Information Security Consultant you will work with the wider IT Security Team to support and maintain enterprise wide solutions. The Responsibilities Assist with security incident management and response activities General day-to-day support on managing and responding to security alerts from systems and end users Perform daily … resolving, and reporting risks Experience of formal document creation, such as the creation of reports or procedures Threat Intelligence analysis and best practice Security Incident Response processes, procedures, and best practices Disaster Recovery and Business Continuity principles Event and log analysis If you are looking for an exciting More ❯

to make a real impact by ensuring the integrity and resilience of the company's IT environment against evolving cyber threats. Key Responsibilities: Support incident management and security response efforts, providing expertise to address and resolve security incidents quickly and effectively. Perform regular security checks, including daily, weekly … Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk identification, and mitigation. Knowledge of security auditing and security incident response processes. Experience with event and log analysis to monitor and assess security risks. Solid understanding of Disaster Recovery (DR) and Business Continuity More ❯

to make a real impact by ensuring the integrity and resilience of the company's IT environment against evolving cyber threats. Key Responsibilities: Support incident management and security response efforts, providing expertise to address and resolve security incidents quickly and effectively. Perform regular security checks, including daily, weekly … Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk identification, and mitigation. Knowledge of security auditing and security incident response processes. Experience with event and log analysis to monitor and assess security risks. Solid understanding of Disaster Recovery (DR) and Business Continuity More ❯

and categorise incidents in accordance with established security policies. Detect and investigate intrusion attempts and determine their scope and impact. Document high-quality security incident reports, supported by threat intelligence and independent research. Conduct or support remediation efforts to neutralise threats, restore systems, and prevent recurrence. Produce post-incident review reports and provide actionable security improvement recommendations. Apply threat intelligence to improve detection capabilities and situational awareness. Support national-scale cyber incident response activities in a coaching or mentoring capacity. Collaborate with internal and client teams to enhance SOC services and align with evolving threat landscapes. … Develop automated response workflows for SOAR platforms targeting common attack vectors. Drive continuous improvement by refining detection use cases and enhancing SOC processes. Technical Skills & Experience: Hands-on experience with SIEM tools such as Splunk (Enterprise Security) and Microsoft Sentinel. Proficiency in Python and scripting for automation and analysis More ❯

and categorise incidents in accordance with established security policies. Detect and investigate intrusion attempts and determine their scope and impact. Document high-quality security incident reports, supported by threat intelligence and independent research. Conduct or support remediation efforts to neutralise threats, restore systems, and prevent recurrence. Produce post-incident review reports and provide actionable security improvement recommendations. Apply threat intelligence to improve detection capabilities and situational awareness. Support national-scale cyber incident response activities in a coaching or mentoring capacity. Collaborate with internal and client teams to enhance SOC services and align with evolving threat landscapes. … Develop automated response workflows for SOAR platforms targeting common attack vectors. Drive continuous improvement by refining detection use cases and enhancing SOC processes. Technical Skills & Experience: Hands-on experience with SIEM tools such as Splunk (Enterprise Security) and Microsoft Sentinel. Proficiency in Python and scripting for automation and analysis More ❯

and categorise incidents in accordance with established security policies. Detect and investigate intrusion attempts and determine their scope and impact. Document high-quality security incident reports, supported by threat intelligence and independent research. Conduct or support remediation efforts to neutralise threats, restore systems, and prevent recurrence. Produce post-incident review reports and provide actionable security improvement recommendations. Apply threat intelligence to improve detection capabilities and situational awareness. Support national-scale cyber incident response activities in a coaching or mentoring capacity. Collaborate with internal and client teams to enhance SOC services and align with evolving threat landscapes. … Develop automated response workflows for SOAR platforms targeting common attack vectors. Drive continuous improvement by refining detection use cases and enhancing SOC processes. Technical Skills & Experience: Hands-on experience with SIEM tools such as Splunk (Enterprise Security) and Microsoft Sentinel. Proficiency in Python and scripting for automation and analysis More ❯

Monitor, triage, and investigate alerts and network traffic using SIEM tools. Analyse and categorise security incidents in line with internal policies. Conduct in-depth incident investigations, reporting, and remediation. Utilise threat intelligence to detect and respond to potential threats. Support incident response activities for national-scale cyber More ❯

Monitor, triage, and investigate alerts and network traffic using SIEM tools. Analyse and categorise security incidents in line with internal policies. Conduct in-depth incident investigations, reporting, and remediation. Utilise threat intelligence to detect and respond to potential threats. Support incident response activities for national-scale cyber More ❯

and onboarding of new SOC team members Act as the primary technical escalation point for complex security incidents and investigations Support advanced threat hunting, incident response, and forensic analysis Ensure the SOC follows best practices and industry standards Client Engagement & Technical Account Management Oversee security tool deployments and … in a leadership role Strong technical knowledge of security tools, including SIEM, SOAR, EDR, Firewalls, and Threat Intelligence platforms Hands-on experience with security incident handling, threat hunting, and forensic analysis Excellent understanding of attack tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK Experience managing More ❯

and onboarding of new SOC team members Act as the primary technical escalation point for complex security incidents and investigations Support advanced threat hunting, incident response, and forensic analysis Ensure the SOC follows best practices and industry standards Client Engagement & Technical Account Management Oversee security tool deployments and … in a leadership role Strong technical knowledge of security tools, including SIEM, SOAR, EDR, Firewalls, and Threat Intelligence platforms Hands-on experience with security incident handling, threat hunting, and forensic analysis Excellent understanding of attack tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK Experience managing More ❯

Requirements Technical 5+ years' experience in threat intelligence, vulnerability management or conducting research and investigating cyber threats in a technical capacity. Experience in technical incident response and management. An expert understanding of current and emerging threats related to government and CNI. Excellent Open-Source research skills. Demonstrate a More ❯

effectively. What We're Looking For Technical Expertise: 5+ years of experience in threat intelligence, vulnerability management, or cyber threat research. Hands-on technical incident response and management experience. Strong understanding of emerging threats targeting government and CNI. Proficiency in Open-Source research, Windows/Linux operating systems More ❯

effectively. What We're Looking For Technical Expertise: 5+ years of experience in threat intelligence, vulnerability management, or cyber threat research. Hands-on technical incident response and management experience. Strong understanding of emerging threats targeting government and CNI. Proficiency in Open-Source research, Windows/Linux operating systems More ❯

Analyst you will: As part of our Blue Team, you'll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Don't worry if you don't tick every box - we'd still love to hear from you! If you're … during relevant cybersecurity incidents Deliver detailed threat reporting including executive briefings, and actionable recommendations to technical and non-technical stakeholders Set yourself apart: Monitoring, incident response and playbook development Detection creation within SIEM tools and using GitHub Vulnerability scanning, management and reporting Core cybersecurity concepts such as network More ❯

Technology to oversee and drive excellence within our Tier 2 - Global Service Desk Team . As a key technical leader, you will ensure efficient incident resolution, problem management, and service request fulfillment while upholding ITIL best practices. This role is pivotal in bridging Tier 1 and Tier 3 support … high-quality support and adherence to SLAs. Act as the primary escalation point for complex technical issues before engaging Tier 3 support. Ensure effective incident response, root cause analysis, and problem resolution in alignment with ITIL principles. Work closely with Tier 1 and Tier 3 teams to establish … clear escalation and de-escalation pathways. Implement and maintain ITIL-based best practices in service requests, incident, problem, and change management. Continuously refine service management workflows to improve response times and service quality. Own and optimize the Knowledge Management system, ensuring updated documentation and SOPs. Drive automation and More ❯

Responsibilities: Develop and implement technical solutions aligned with business needs. Manage and support network infrastructure (switches, routers, firewalls, etc.), including lifecycle management, upgrades, and incident response. Oversee critical changes and ensure infrastructure efficiency. Collaborate with Engineering, Architecture, Security, and Support teams. Ensure system availability, performance, and security. Align technology More ❯

like Datadog, New Relic, and Sentry. Contribute to automated testing, security hardening, and CI/CD efficiency improvements. Participate in troubleshooting, performance tuning, and incident resolution. Continuously refine internal documentation and DevOps processes. Research and introduce new tools and best practices aligned with our DevOps journey. Growth/Development … systems. Positive feedback from engineering teams on the usability and efficiency of DevOps tools and practices. Continuous improvement in CI/CD performance and incident response time. About you: Extensive experience with Azure or Google Cloud Platform, either in a commercial setting or private projects, with knowledge of More ❯